GroundWork Monitor Enterprise contains a flaw in the Performance component. The issue is due to the program failing to properly restrict write access to arbitrary users. This may allow an unauthenticated remote attacker to inject server-side includes (SSI), which will execute arbitrary operating system commands.